I've been looking for an aptitude command to search for security updates. This information is being shown when running the screen. So far I reached to this command: aptitude search '~S ~VCANDIDATE ~Asecurity ~U' It looks like producing the correct results, but I still don't quite understand the how the filter (~S) command works.
View 3 RepliesI've figured out that '~i !~M' will give me all packages I have manually installed. Can I formulate a query such that I get all packages manually installed from a particular distribution (e.g. Lenny, Squeeze, Sid)? Yes, I'm using pinning.
View 1 Replies View RelatedAfter running "aptitude upgrade" I have been getting a message lately such as "There are x updates available, it is recommended to update your system". But, running aptitude update/upgrade again afterwards, aptitude ignores these supposedly available updates to the system. How can I clear up this situation?. I am using the latest Debian Squeeze distro
View 5 Replies View Relatedwhat would happen if aptitude needed to ask me a question, (like which config file to keep for a certian essential program, etc.). I don't think I've come across this problem yet, but I really wouldn't know. I do get the following lines on the screen with aptitude-gtk just about every day when I do squeeze updates and I wonder if it's not related to this same question. Does anyone know if aptitude-gtk is capable of asking you, the administrator, questions about a package that it's updating?
[code]...
this is at the root of the problems I'm about to describe: Whenever I try to upgrade my Debian installation, I have repeated "size mismatch" errors that necessitate restarting the upgrade process. Since I'm using Debian Squeeze there are lots of upgrades to be done every week. Today, for instance, because I've not upgraded for a few weeks I have to download over 300MB of files to complete the upgrade. However, because of the size mismatch problem this download may well turn into something between 1GB and 2GB, as I repeatedly have to re-download files that were successfully downloaded in the last failed upgrade. What with my ISP limiting me to 7GB per month, I'm finding that merely keeping Debian up to date is using up most of my allotted bandwidth.
I've tried setting the Aptitude preferences not to "remove unused packages automatically", and not to "remove obsolete package files after downloading package lists", but for some reason I still find that files I downloaded in the last failed upgrade have to be downloaded again (and again, ...) whether anyone either knows how to avoid the package size mismatch problem (I can't change my ISP, which has a monopoly on providing internet to my area), or alternatively knows how to set Aptitude not to forget the packages it has downloaded successfully during each failed upgrade, thereby allowing me to avoid such a huge bandwidth usage on my frequent upgrades.
It's trying to fix/complete failed installs but keeps encountering the same errors (error message below). I'm running basically Testing, but there are a few Stable and SID packages due to issues with the blasted nVidia legacy drivers. I've swapped out the video board with an ATI board so that is sorted, but now I can't do any updates. Hoping there is some way to manually override apt's determination to try to fix all broken packages whenever I do anything (install, remove, update, etc). A Google search of this error message didn't turn up anything recent. Any thoughts are welcome.
[Code].....
I am trying to upgrade an amd64 lenny system to squeeze.I've got a 2.6.32 kernel running, done aptitude update and aptitude install aptitude.When I try "aptitude safe-upgrade", it sits forever resolving dependencies.it seems to search with the resolver counting up more and more open/conflict/ whatever.I stopped it once it got over 100,000)Is it possible to get aptitude to do a safe-upgrade, perhaps using a command line option?
View 2 Replies View RelatedToday I ran
aptitude update && aptitude safe-upgrade
Like I regularly do, and I see these two packages need to be upgraded:
login passwd
Since these packages seem kinda security-sensitive I would like to know exactly why I would need to upgrade them. I checked Debian's security list but couldn't find anything relevant, and the links to the changelog for both packages are broken:
The requested URL /changelogs/pool/main/s/shadow/shadow_4.1.4.2+svn3283-2+squeeze1/changelog was not found on this server.
Where can I see what is changed in these packages so I can safely upgrade?
I lost my ssh connection to Ubuntu 10.10 server during the configuration update stage of an aptitude full-upgrade for a few month's worth of updates.From the following ps ax list, can anyone tell me how I might reconnect to the screen which is prompting whether to keep the existing samba version, or use the distribution conf version?
Failing that, what's the safest sequence top kill these processes and start again? This time I'll remember to use screen to prevent connection loss.
New to Ubuntu not to Unix. I am having issues with aptitude updates. Gives error unable to locate. When I look for the file manually I cannot find it either. It is looking for http://us.archive.ubuntu.com/ubuntu/ lucid/main Translation-en_US. Is there a site that list all mirrors that carry the updates? I would like to find manually and adjust source.list file.
View 6 Replies View RelatedI've noticed this happening on some servers that I manage. I'll be downloading updates around 300 kb/s - 500 kb/s and then out of nowhere it will drop to about 3 kb/s. It will stay here forever, if I let it. I then have to cancel (Ctrl-C) the updates and restart them. This happens over and over and over until I finally get the full download. Why does this happen?
View 5 Replies View RelatedI have a very strange problem; when trying to apt-get update or aptitude update I get time out errors. At first it was resolving ipv6 adresses:
Cannot initiate the connection to ftp.litnet.lt:80 (2001:778::87). - connect (101: Network is unreachable) [IP: 2001:778::87 80] Err [URL] Cannot initiate the connection to security.debian.org:80 (2001:a78:5:1:216:35ff:fe7f:6ceb). - connect (101: Network is
unreachable) [IP: 2001:a78:5:1:216:35ff:fe7f:6ceb 80] As my host does not have normal ipv6 support, i just tried to disable ipv6: echo net.ipv6.conf.all.disable_ipv6=1 > /etc/sysctl.d/disableipv6.conf
[Code]....
I recently reported a bug in a package, which was fixed upstream and in the Debian package, but the bug was not security-related. The Debian settings on all of the computers is set to receive only the security updates. The other setting for proposed updates, is currently not enabled
Must Proposed Updates be enabled, in order to receive the non-security updates, including the update to the package in question?
In the past i used OpenSUSE for a few months, in OpenSUSE all updates related to security labeled as "Security Update" like updates related to Firefox, unlike OpenSUSE in the Debian i did can't find a way to detect security updates.
View 5 Replies View RelatedSo, it is my understanding that Ubuntu's automatic updates do not install ANY updates that are not "important security updates." For example, it did not upgrade me to Firefox 4 automatically; I had to do it myself (Don't all new browser versions usually contain new security features/patches? Oh well...That is a separate question entirely).
ANYWAY, is there some way to get the latest stable versions of all of my open-source software automatically (or at least all at once, on command), instead of just security updates? It seems silly to have to install new versions for every program manually.
Also, related/side question: Now that I have installed Firefox 4 myself (via apt-get by adding the mozilla-stable PPA), will I stop getting security updates for Firefox through the standard Ubuntu update manager?
Actually, a really thorough explanation of the whole automatic update system (or a link to one) would be great too.
So yesterday I receive a copy of the SANS @RISK security vulnerability newsletter, and, lo and behold, Mozilla's Firefox and Thunderbird are on it yet again. (Yeah, I know, shocking, isn't it?)So I quickly check what versions I have installed. Yup: Vulnerable.I check whether updates are available.These are pretty serious "remote code execution" vulnerabilities and the status is "vendor confirmed, updates available." So why isn't my 9.10 desktop's update manager telling me updates are available?
View 9 Replies View RelatedI'm new to server admin, so my question is based on what may be a bad assumption. With a server, my assumption is "if it ain't broke, don't fix it". In other words, I'm not really interested in upgrading the software to the latest and greatest if I already have stuff working on the server.
However, the one place where I DO want to constantly have upgrades is for security patches. How do I apply security updates to Ubuntu Server... and ONLY security updates?
With an Ubuntu 10.10 upgraded from 10.04, under Software Sources, Updates, there is a radio button marked "Install security updates without confirmation." I have this radio button marked, but still get "Important security updates" almost daily in my update manager. I don't remember this feature actually ever working.
View 9 Replies View RelatedIs there a way to to check if the system has the available security updates installed? Specifically, I am looking to do this programmatically.
View 1 Replies View RelatedDoes anyone know when we'll see Firefox 3.0.19 packaged for 8.04 LTS? I'm still stuck at 3.0.18. And what will happen after this? My understanding is that after .19 Mozilla is dropping support for FF 3.0.
Upgrade policies not withstanding, I find it rather annoying when an "LTS" release doesn't keep up with the most security-critical package in the distro, the browser. 8.04 LTS should have moved to FF 3.5+ a *long* time ago. Now it seems it will be forced to do so or else just forget about browser updates for the last year of 8.04?
I know I can install the current Firefox with ubuntuzilla, I just keep wishing Ubuntu would do it for me.
In general CentOS search automatically after startup for available software updates.Then after some (~20-30) minutes an icon appears in the toolbar which the user can click and install the updates.How can I manually speed up/trigger IMMEDIATELY the search for updates (without waiting for the built-in search)?
View 3 Replies View RelatedI'm fairly new to debian, but not to Linux overall. And it seems that I can not install anything using the "apt-get" or "aptitude" commands. Here is what it says when I try to install synaptic:
apt-get install synaptic
Reading package lists... Done
Building dependency tree
Reading state information... Done
Package synaptic is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or is only available from another source.
E: Package synaptic has no installation candidate
From what I understand aptitude and apt-get are both valid package management tools and it should not matter which one you use (of course the user interface is different, but the basic functionality is the same). I found something which makes me believe there are differences: I ran aptitude install gnome-themes-more and it did nothing because the package was already installed. Then I ran apt-get install gnome-themes-more just to see the difference, and it also did not install anything, but it marked the package as manually installed.
The I ran again apt-get install gnome-themes-more and this time the package was not marked as manually install (obviously because it's already marked). This makes me believe that aptitude did not mark my package as manually installed (I would have pasted the command output as well, but I don't have it anymore). So, is the core functionality of those tools the same or not?
I used until now apt-get and wonder if I should have used aptitude. I have found some wikis which recommend the usage of aptitude but I could not find out if this reccomendation is based only on the UI improvements or are there also improvements in the core functionality. I'd like some hints from more seasoned debianers about which one to use, or whether it matters. I'm maily using command line, so user interface is not an issue,
I'm looking for a script that can look for illegal scripts/services that are being run on OpenVZ VPS from the host node. Things like IRC, EggDrop, Brute Force scripts and such.
View 7 Replies View RelatedI'm using Debian Testing (I know it doesn't happen in Stable)
Words isn't required here. I'll show examples:
# aptitude dist-upgrade
Code: Select allThe following NEW packages will be installed:
appstream{a} coinor-libcoinutils3v5{ab} coinor-libosi1v5{ab} cpp-5{a}
g++-5{a} gcc-5{a} gcj-5-jre{a} gcj-5-jre-headless{a} gcj-5-jre-lib{a}
geoip-database-extra{a} gnuplot5-data{a} gnuplot5-qt{a} icoutils{a}
kded5{a} kinit{a} kio{a} libapt-inst1.7{a} libapt-pkg4.16{a} libasan2{a}
[Code] ....
Why apt-get can while aptitude can't?
I've searched on web, and all I can tell is that aptitude is "safer" than apt-get because it taking account the packages on hold.
But I don't have any package on hold! (I've tested dpkg --get-selections | grep hold)
How to find packages with aptitude. If I use the shell to type "aptitude search nethack" then I get a list of several nethack versions from which to choose. If I use the aptitude GUI and type Ctrl-T and then arrow over to the search option and type in "nethack" and hit Enter, the only option that I see is nethack-spoilers. Why do I not see all of the other nethack options?
View 2 Replies View RelatedJust today saw that for some reason aptitude seems broken. Dunno the reason. I don't know if its do with aptitude or some other update which introduced the issue. The issue is simple.
Before I could do something like $sudo aptitude purge linux-image [TAB]
Putting down the tab it would autocomplete or/and give other options if there were multiple options (it would do some kinda grep)
Now after the update of aptitude few days ago and other things I get something like this : sudo aptitude purge linux-image [TAB]grep-status: /var/lib/dpkg/status:14651: expected a colon
I was running today's udpate and saw this :-
[code]...
Running testing
There were some grave bugs being showed by listbugs for apt dpkg etc
So ran aptitude hold for these buggy packages and upgraded others
Now unable to 'unhold' dpkg. ie
synaptic shows it as 1.17.13 both installed and latest and no upgradation possible
[URL] .... shows it as 1.17.23
Code: Select all# aptitude dist-upgrade
The following NEW packages will be installed:
dpkg:i386{ab} libbz2-1.0:i386{a} libjpeg62-turbo:i386{a} libsystemd0:i386{a}
some other stuff
Code: Select allThe following packages have unmet dependencies:
dpkg : Conflicts: dpkg:i386 but 1.17.23 is to be installed.
dpkg:i386 : Conflicts: dpkg but 1.17.13 is installed.
So I can only conclude that aptitude sees the need to upgrade from .13 to .23 but for some reason it cant 'get out' of the installed dpkg:amd64
Normally I use apt-get for to upgrade my Debian system. Today i tried to compare apt-get and aptitude with respect to system upgrade. Surprisingly I got different results.
Code: Select allsudo apt-get upgrade
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
The following packages have been kept back:
openjdk-7-jre openjdk-7-jre-headless
The following packages will be upgraded:
libtiff5
1 upgraded, 0 newly installed, 0 to remove and 2 not upgraded.
Need to get 213 kB of archives.
After this operation, 44.0 kB disk space will be freed.
Code: Select allsudo aptitude safe-upgrade
Resolving dependencies...
The following NEW packages will be installed:
libsctp1{a} lksctp-tools{a}
The following packages will be upgraded:
libtiff5 openjdk-7-jre openjdk-7-jre-headless
3 packages upgraded, 2 newly installed, 0 to remove and 0 not upgraded.
Need to get 45.9 MB/45.9 MB of archives. After unpacking 9,130 kB will be used.
What is behind these results? Which method is safer?